CVE-2026-9089
EUVD-2026-3129021.05.2026, 16:16
The ConnectWise Automate™ Agent does not fully verify the authenticity of components obtained during plugin loading and self-update operations. This issue is addressed in Automate 2026.5.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| connectwise | automate | 𝑥 < 2026.5 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration